Menu
picture of tbs certificates
picture of tbs certificates
Certificates
Our products range
Partners
Support
Focus


20230823 - Evolution of Certigna products

On September 1st, 2023 major changes will be made to certain Certigna certificates including an e-mail address.

What changes are to be expected?

Some certificates will lose the "Email Protection" role of the EKU (Extended Key Usage). The certificates concerned can therefore no longer be used to sign emails.

What products are affected?

The ID RGS*, ID RGS** and the authority's signature stamps certificates (RGS* / RGS** / LCP / QCP).

EDIT: Since November 6, 2023 the ID RGS** certificate has retrieved its "Email Protection" role.

Why?

This is a direct consequence of the implementation of the Baseline Requirements relating to S/MIME certificates which come into effect on September 1st, 2023..

They include additional verification mechanisms for email addresses that are entered in the SAN fields of client certificates.

The certification authority, unable to comply with these new requirements, has therefore decided to modify the roles of the impacted certificates.

What are the consequences for certificates issued before September 1st , 2023?

None. Certificates issued before the deadline will continue to work properly until their expiration date.

Note, however, that certificates reissued after September 1st, 2023 will lose the "Email Protection" role.

A temporary decision?

The reintegration of these products into the catalog with a return of the "Email Protection" role is dependent on a modification of the authority's audit processes, which must provide for additional verification of the email address of these certificates.

Certigna does not exclude this possibility. Case to follow.

Useful links